Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Subscribe
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
OllyDBG for Beginners (olly debug)
Rating: 4.3 out of 5(64 ratings)
359 students

OllyDBG for Beginners (olly debug)

Learn Debugging with OllyDBG
Created byHadi Alnabriss
Last updated 7/2018
English

What you'll learn

  • After attending this course students will be able to debug and analyze simple applications and to change the behavior of debugged application

Course content

1 section11 lectures1h 9m total length

  • Introduction4:56

    In this lecture you will learn brief concepts about debugging, compiling and disassembling. The slides of this course are attached here in PDF format, in addition to the executable sample that I am using through this crash course

  • Download and Start OllyDBG5:30

    In this lecture we download and run OllyDBG, the students will learn briefly about the OllyDBG interface.

    To download the slides in PDF format or the checkpass.exe executable file refer to the first lecture please, 

  • OllyDBG Interface4:01

    In this lecture students will learn the menu bar buttons, and additional information about the OllyDBG interface

    To download the slides in PDF format or the checkpass.exe executable file refer to the first lecture please, 

  • Stepping Into and Stepping Over1:51

    In this lecture students will learn what is stepping, in addition to the difference between stepping into and stepping over.

    To download the slides in PDF format or the checkpass.exe executable file refer to the first lecture please, 

  • Breakpoints12:56

    In this lecture students will learn the difference between Hardware, Software and Conditional Breakpoints. Students will learn how to use breakpoints with practical examples.

    To download the slides in PDF format or the checkpass.exe executable file refer to the first lecture please, 

  • Modifying Data1:19

    Modifying data is one of the most important practices in debugging. In this lecture students will learn how to modify Registers, Instructions, Stack and Memory to change the debugged application behavior.

    For example, if you run an application that checks the type of your windows OS ( if windows is Windows 10, continue , else,  exit ), you can control this operation to guarantee that it is going to make Boolean true always, this how you guarantee that the application will continue debugging.


    To download the slides in PDF format or the checkpass.exe executable file refer to the first lecture please, 

  • Practical Example23:07

    In this lecture students will show how to practice a practical example for using OllyDBG, students will learn how to debug a sample executable file and how to understand what this executable does.

    To download the slides in PDF format or the checkpass.exe executable file refer to the first lecture please.

  • Tracing7:19

    In this lecture students will learn what is tracing, and how to use tracing to record all the events and transactions that happens with each instruction, this will help you to go to previous instructions and check the old values of registers, memory and stack.

    To download the slides in PDF format or the checkpass.exe executable file refer to the first lecture please.


  • Exporting Modified Executable3:50

    In this lecture students will learn how to modify an application and export a new executable that makes different functionality.  In this practical example we are using a sample executable that asks the user to insert an integer, then of the value Less or Equal 500 it prints Failed, Else it prints Done. Students will learn to change this application to print Done always.

    To download the slides in PDF format or the checkpass.exe executable file refer to the first lecture please.

  • Debugging DLL4:07

    In this lecture students will learn how to debug DLL files and use exported functions to do specific tasks. This lecture discuss debugging DLL files for beginners only.

    To download the slides in PDF format or the checkpass.exe executable file refer to the first lecture please.

  • Epilogue0:34

    Brief Summary.

    And please rate how much this crash course was helpful for you as a beginner.

Requirements

  • Students who join this course should be familiar with assembly language and the portable executable files architecture in addition to good knowledge on how program routines flow

Description

This course is prepared for students interested in debugging and analyzing applications or malware analysis, In this course you will learn how to convert an executable file to assembly language and then to read what this executable is doing, you will also be able to modify the function of this executable and export a new modified executable.

before joining this course you must be familiar with assembly language and the portable executable files architecture.

After attending this course you will be able to answer the following questions :

What is Debugging?

What is the difference between compiler, assembler, disassembler and debugger?

What is stepping into and stepping over in debugging?

How to create Breakpoints? and what is the difference between Software and Hardware Breakpoints?

What is Tracing?

How to export modified executable?

and, how to debug a DLL file using OllyDBG?


When you join this course you will be able to watch the lectures' videos and to download the slides presentation, in addition to an executable file example that we are going to use during our practical tests in this course.

(it is pronounced as "olly dbg" or "olly debug")


Who this course is for:

  • Students interested in malware analysis or those interested in debugging applications on windows environment

Report abuse